package com.htn.common.core.utils;

import javax.servlet.http.HttpServletRequest;

import com.alibaba.fastjson.JSONObject;
import com.htn.common.core.domain.LoginUserDto;
import org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder;
import com.htn.common.core.constant.SecurityConstants;
import com.htn.common.core.text.Convert;

/**
 * 权限获取工具类
 * 
 * @author htn
 */
public class SecurityUtils
{
    /**
     * 获取用户
     */
    public static String getUsername(){
        String username = ServletUtils.getRequest().getHeader(SecurityConstants.DETAILS_USERNAME);
        return ServletUtils.urlDecode(username);
    }

    /**
     * 获取用户ID
     */
    public static String getUserId(){
        HttpServletRequest request = ServletUtils.getRequest();
        return Convert.toStr(ServletUtils.getRequest().getHeader(SecurityConstants.DETAILS_USER_ID));
    }

    /**
     * 获取请求token
     */
    public static String getToken(){
        return getToken(ServletUtils.getRequest());
    }

    /**
     * 根据request获取请求token
     */
    public static String getToken(HttpServletRequest request){
        String token = request.getHeader(SecurityConstants.TOKEN_AUTHENTICATION);
        return replaceTokenPrefix(token);
    }

    /**
     * 替换token前缀
     */
    public static String replaceTokenPrefix(String token){
        if (StringUtils.isNotEmpty(token) && token.startsWith(SecurityConstants.TOKEN_PREFIX))
        {
            token = token.replace(SecurityConstants.TOKEN_PREFIX, "");
        }
        return token;
    }

    /**
     * 是否为管理员
     * 
     * @param userId 用户ID
     * @return 结果
     */
    public static boolean isAdmin(String userId){
        return StringUtils.isNotBlank(userId)   ;
    }

    /**
     * 生成BCryptPasswordEncoder密码
     *
     * @param password 密码
     * @return 加密字符串
     */
    public static String encryptPassword(String password){
        BCryptPasswordEncoder passwordEncoder = new BCryptPasswordEncoder();
        return passwordEncoder.encode(password);
    }

    /**
     * 判断密码是否相同
     *
     * @param rawPassword 真实密码
     * @param encodedPassword 加密后字符
     * @return 结果
     */
    public static boolean matchesPassword(String rawPassword, String encodedPassword){
        BCryptPasswordEncoder passwordEncoder = new BCryptPasswordEncoder();
        return passwordEncoder.matches(rawPassword, encodedPassword);
    }

    public static JSONObject getUserInfo(){
        String token = ServletUtils.getRequest().getHeader(SecurityConstants.TOKEN_AUTHENTICATION);
        token = replaceTokenPrefix(token);
        return  JwtTokenUtils.getRetuenObj(token);
    }


}
